Add support to publish RegistrationInfo (MDRPI) in the IdP.

git-svn-id: https://simplesamlphp.googlecode.com/svn/trunk@3339 44740490-163a-0410-bde0-09ae8108e29a

Add support to publish RegistrationInfo (MDRPI) in the IdP.
82f02d49 · Jaime Pérez Crespo · b03dc5cc · 82f02d49 · 82f02d49 · 82f02d49
Commit 82f02d49 authored 11 years ago by Jaime Pérez Crespo
--- a/docs/simplesamlphp-reference-idp-hosted.txt
+++ b/docs/simplesamlphp-reference-idp-hosted.txt
@@ -208,6 +208,24 @@ The following SAML 2.0 options are available:
 :   Note that the value set here will be added to the metadata generated for this IdP,
    in the `NameIDFormat` element.

+`RegistrationInfo`
+:   Allows to specify information about the registrar of this IdP. Please refer to the
+    'SAML V2.0 Metadata Extensions for Registration and Publication Information' document
+    for further information on this topic. This option accepts an array with the following
+    options:
+
+:   -   `authority`: The unique identifier of the authority that registered the entity.
+    It is recommended that this be a URL that resolves to a human readable page describing
+    the registrar authority (e.g., the registrar's home page). This parameter is REQUIRED.
+
+:   -   `instant`: The instant the entity was registered with the authority. Time values 
+    must be expressed in the UTC timezone using the 'Z' timezone identifier. This parameter
+    is OPTIONAL.
+
+:   -   `policies`: The policy under which the entity was registered. An indexed array with
+    URLs pointing to the localized versions of the policy. Each index will be used as the
+    language identifier. This parameter is OPTIONAL.
+
 `saml20.sendartifact`
 :   Set to `TRUE` to enable the IdP to send responses with the HTTP-Artifact binding.
    Defaults to `FALSE`.

--- a/lib/SimpleSAML/Metadata/SAMLBuilder.php
+++ b/lib/SimpleSAML/Metadata/SAMLBuilder.php
@@ -147,6 +147,25 @@ class SimpleSAML_Metadata_SAMLBuilder {
 			$this->entityDescriptor->Extensions[] = $ea;
 		}

+		if ($metadata->hasValue('RegistrationInfo')) {
+			$ri = new SAML2_XML_mdrpi_RegistrationInfo();
+			foreach ($metadata->getArray('RegistrationInfo') as $riName => $riValues) {
+				switch ($riName) {
+					case 'authority':
+						$ri->registrationAuthority = $riValues;
+						break;
+					case 'instant':
+						$ri->registrationInstant = SAML2_Utils::xsDateTimeToTimestamp($riValues);
+						break;
+					case 'policies':
+						$ri->RegistrationPolicy = $riValues;
+						break;
+				}
+			}
+			$this->entityDescriptor->Extensions[] = $ri;
+
+		}
+
 		if ($metadata->hasValue('UIInfo')) {
 			$ui = new SAML2_XML_mdui_UIInfo();
 			foreach ($metadata->getArray('UIInfo') as $uiName => $uiValues) {

--- a/metadata-templates/saml20-idp-hosted.php
+++ b/metadata-templates/saml20-idp-hosted.php
@@ -52,4 +52,20 @@ $metadata['__DYNAMIC:1__'] = array(
 	),
 	*/

+	/*
+	 * Uncomment the following to specify the registration information in the
+	 * exported metadata. Refer to:
+     * http://docs.oasis-open.org/security/saml/Post2.0/saml-metadata-rpi/v1.0/cs01/saml-metadata-rpi-v1.0-cs01.html
+	 * for more information.
+	 */
+	/*
+	'RegistrationInfo' => array(
+		'authority' => 'urn:mace:example.org',
+		'instant' => '2008-01-17T11:28:03Z',
+		'policies' => array(
+			'en' => 'http://example.org/policy',
+			'es' => 'http://example.org/politica',
+		),
+	),
+	*/
 );
--- a/www/saml2/idp/metadata.php
+++ b/www/saml2/idp/metadata.php
@@ -146,6 +146,10 @@ try {
 		$metaArray['DiscoHints'] = $idpmeta->getArray('DiscoHints');
 	}

+	if ($idpmeta->hasValue('RegistrationInfo')) {
+		$metaArray['RegistrationInfo'] = $idpmeta->getArray('RegistrationInfo');
+	}
+
 	$metaflat = '$metadata[' . var_export($idpentityid, TRUE) . '] = ' . var_export($metaArray, TRUE) . ';';

 	$metaBuilder = new SimpleSAML_Metadata_SAMLBuilder($idpentityid);